/alerttags/cwe-922/ Recent content in CWE-922 on ZAP Hugo en-us /docs/alerts/120002-1/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/120002-1/ <p>JWT was stored in browser localStorage. This is dangerous because data stored in localStorage does not expire. .</p> /docs/alerts/120002-2/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/120002-2/ <p>JWT was stored in browser sessionStorage. This is not unusual or necessarily unsafe - this informational alert has been raised to help you get a better understanding of what this app is doing. For more details see the Client tabs - this information was set directly in the browser and will therefore not necessarily appear in this form in any HTTP(S) messages.</p>